Monthly Patches are out for Siemens, Schneider Electric, and SAP. New Alerts for Apple (Exploit), Hitachi, and Sophos.
Microsoft and Adobe Monthly Patches are expected this afternoon.
Siemens
Siemens has published their Monthly Patches, with 5 new bulletins and 8 updated bulletins. Among the new bulletins, highest CVSSv3 score of 8.8
More info.
The Mendix SAML module insufficiently protects from packet capture replay. This could allow unauthorized remote attackers to bypass authentication and get access to the application. CVSSv3 score of 7.4
More info.
Multiple vulnerabilities affecting various third-party components of SINEC INS could allow an attacker to cause a DoS, disclose sensitive data or violate the system integrity. CVSSv3 score of 8.8
More info.
RUGGEDCOM ROS-based devices are vulnerable to a DoS attack (Slowloris). CVSSv3 score of 5.3
More info.
Monthly Patches are out for Schneider Electric, with 1 new bulletin and 12 updated bulletins. The new bulletin has a CVSSv3 score of 7.8
More info.
It is SAP Security Patch Day with the release of 8 new Security Notes and 5 updated Security Notes. Of the new notes, highest CVSSv3 score of 7.8.
More info.
Apple has provided security updates for Safari, tvOS, watchOS, macOS, iOS, and iPadOS. Two of the vulnerabilities are actively exploited in the wild.
More info.
A DoS Vulnerability have been found in uCosminexus TP1/Client/J and Cosminexus Service Coordinator.
More info.
Sophos Firewall has release fixes the several security issues, 1 rated Critical, 3 rated High, and 1 rated Medium. Highest CVSSv3 score of 9.8
More info. And here.
Comments